HIPAA Penalty Follows Company Into Receivership

"The careless handling of [protected health information] is never acceptable," said OCR Director Roger Severino. "Covered entities and business associates need to be aware that OCR is committed to enforcing HIPAA regardless of whether a covered entity is opening its doors or closing them. HIPAA still applies."

  • Feb 15, 2018

Saying the case illustrates that "consequences for HIPAA violations don't stop when a business closes," the U.S. Department of Health and Human Services reported Feb. 13 that a receiver appointed to liquidate the assets of Filefax, Inc. has agreed to pay $ 100,000 out of the receivership estate to the HHS Office for Civil Rights to settle potential violations of the Health Insurance Portability and Accountability Act (HIPAA) Privacy Rule.

Filefax, located in Northbrook, Illinois, is no longer in business. But it had advertised that it provided for the storage, maintenance, and delivery of medical records for covered entities. "Although Filefax shut its doors during the course of OCR's investigation into alleged HIPAA violations, it could not escape its obligations under the law," the federal agency reported, explaining the case this way:

  • On Feb. 10, 2015, OCR received an anonymous complaint alleging someone transported medical records obtained from Filefax to a shredding and recycling facility to sell on Feb. 6 and 9, 2015. OCR opened an investigation, which confirmed that an individual had left medical records of approximately 2,150 patients at the shredding and recycling facility and that those records contained patients' protected health information (PHI).
  • The investigation indicated that between Jan. 28, 2015, and Feb. 14, 2015, Filefax impermissibly disclosed the PHI of 2,150 individuals by leaving the PHI in an unlocked truck in the Filefax parking lot or by granting permission to an unauthorized person to remove the PHI from Filefax and leaving the PHI unsecured outside the Filefax facility.

"The careless handling of PHI is never acceptable," said OCR Director Roger Severino. "Covered entities and business associates need to be aware that OCR is committed to enforcing HIPAA regardless of whether a covered entity is opening its doors or closing them. HIPAA still applies."

Product Showcase

  • Matrix's OmniPro Vision AI Collision Avoidance System

    OmniPro Vision AI is a state-of-the-art collision avoidance system that features NIOSH award-winning Visual Artificial Intelligence (AI) technology. This highly accurate, powerful system identifies and alerts on pedestrians, vehicles and specified objects, ensuring safer facilities, mining operations and industrial sites. With its web-based cloud application, OmniPro Vision AI also logs and analyzes a wide range of data related to zone breach notifications. Operating without needing personal wearable devices or tags, OmniPro has visual and audible zone breach alerts for both operators and pedestrians. Read More

  • Magid® D-ROC® GPD412 21G Ultra-Thin Polyurethane Palm Coated Work Gloves

    Magid’s 21G line is more than just a 21-gauge glove, it’s a revolutionary knitting technology paired with an advanced selection of innovative fibers to create the ultimate in lightweight cut protection. The latest offering in our 21G line provides ANSI A4 cut resistance with unparalleled dexterity and extreme comfort that no other 21-gauge glove on the market can offer! Read More

  • SwabTek® Cannabis Test Kit

    The SwabTek® Cannabis Test Kit is a single-use spot test designed for use in screening for cannabis compounds in any sample type or on any surface. The test is capable of identifying the presumed presence of cannabinoids in very small quantities, with a level of detection as little as 6 μg in mass. Learn more about the SwabTek® Cannabis Test Kit and the rest of SwabTek surface drug testing solutions through the webinar titled "Everything You Want To Know About Surface Testing" Read More

Featured

Most   Popular

Artificial Intelligence